CVE-2024-39424

Name of the Vulnerable Software and Affected Versions: Acrobat Reader versions 20.005.30636 through 24.002.20965 and earlier

Description: The issue is related to the incorrect use of dynamic memory in PDF viewer and editor software. Exploitation of this issue could allow an attacker to execute arbitrary code in the context of the current user. This requires user interaction, where a victim must open a malicious file. The vulnerability is described as a Use After Free issue that could result in arbitrary code execution.

Recommendations: For versions 20.005.30636 and earlier, update to a version that is not affected by this issue. For versions 24.002.20965 and earlier, update to a version that is not affected by this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.